CVE-2019-14271

Published: Jul 29, 2019

Modified: Aug 5, 2024

PUBLISHED

Description

In Docker 19.03.x before 19.03.1 linked against the GNU C Library (aka glibc), code injection can occur when the nsswitch facility dynamically loads a library inside a chroot that contains the contents of the container.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/moby/moby/issues/39449

x_refsource_MISC

https://docs.docker.com/engine/release-notes/

x_refsource_CONFIRM

https://security.netapp.com/advisory/ntap-20190828-0003/

x_refsource_CONFIRM

openSUSE-SU-2019:2021

vendor-advisory

x_refsource_SUSE

DSA-4521

vendor-advisory

x_refsource_DEBIAN

20190910 [SECURITY] [DSA 4521-1] docker.io security update

mailing-list

x_refsource_BUGTRAQ

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2019-14271

Description

Affected Products

References